Category Archives: Azure

Getting started with Azure Pipelines for IT admins

This topic will have a series of upcoming videos to get understanding on pipelines especially for IT Admins. With pipelines you can create an automated release using continuous integration pipeline and create your application. Take a look at this video as an IT admin to get started with Azure pipelines.

Hope you enjoyed this video !!

Introduction to pull requests in Azure Repos for IT Admins

This video presents pull requests for collaboration and code reviews using Azure DevOps.
It helps understanding how pull requests works and how to configure them.

Hope you enjoyed this video.

Feel free to subscribe to channel for getting more updates related to Microsoft Cloud Technologies.

Getting started with Azure Functions

Azure Functions is a cloud service that is accessible on demand and offers all the resources and infrastructure that are constantly updated to run your applications. Azure Function offers server less computing.

This lets the developers concentrate on the sections of the code that are most important for them and the backend underlying infrastructure is automatically taken care by the Azure in the backend.

Function App contains the execution context where the functions are hosted. Take a look at the below video for getting more information on the same.

Hope you enjoyed this video !!

Overview of Azure AD Identity Protection

Azure AD Identity Protection is a solution within Azure AD that provides additional capabilities for monitoring user identities and determining whether an identity has been compromised.

Take a look at the below video to know more about the overview of Azure AD Identity protection.

Hope you enjoyed this session !

Overview of Guest Access in Azure AD

This video provides an overview of Guest Access in Azure AD. In Azure AD every user falls into one of the two categories Member user or Guest user. Take a look at the video for more information on the same.

Hope you enjoyed this video !

Regards

Sathish

Devops Starter – Launch an app running in Azure in a few quick steps

Now i have entered into the devops realm will try my best to start blogging on the devops technology. Having said that this is going to be my first blog on the devops platform.

We will examine building and modifying CI/CD pipelines using Azure Devops. With that, we can create a sample code project, build a release pipeline, and lastly, after deployment, observe how the sample app is automatically distributed in complete throughout the azure cloud infrastructure.

To create a Azure Devops Project we need to navigate to Azure Devops portal and look for Devops Starter.

In the next screen we are presented with the option about what language we will be using to create this project. In our below example we are going to use .net to create this new web app.Note if we have our own code then there is an option to choose that and point them to our own Repo.

Continue reading

Azure PIM- Create custom RBAC roles for search & delete emails

It’s been a long time since I’ve written a blog article about RBAC roles, especially in relation to Exchange. Because working in Exchange areas was my first job, I had the opportunity to have a sneak peek at this topic when a colleague suggested that we consider providing a scaled down permission level for EXO operations search and remove suspicious emails.

It’s always advisable to give the least amount of authorization for daily operational tasks, such as when an end user reports a suspicious spam email to the security team and helpdesk. There are circumstances when global admin is granted for this operation in this case, because by default there is no direct Azure AD built in roles for instance search & purge roles that is present in the compliance center.

Though there is no direct way to assign the permission via Azure AD roles we have the option to connect it to office 365 security and compliance and add this group to search & purge role. We are going to look out for providing such access via this blog.

We will use PIM to grant just-in-time access to Defender for Office 365 related tasks

In our case in this demo we are going to run this example with a user called Selvam who does not have any access apart from a regular user privilege’s. In our example Selvam will be a SOC Admin who is responsible for searching and deleting suspicious emails when an incident is reported.

The first task is to customize and add some permission entry for Selvam .

Navigate to security reader role in roles and administrator.

And go to role settings and here we need to tweak the activate maximum duration hours settings

In the next pane we can choose the role settings for example the duration hours to be 24 hours.

Continue reading

Microsoft Teams – Utilize the Azure Sentinel to facilitate SOC and Monitor Teams critical events

Its been almost a year that Microsoft has announced the new release in Azure Sentinel which provides us the opportunity to integrate MS Teams related activities that are recorded in the audit logs to Azure Sentinel. Enabling this feature benefits organization where there is a separate SOC team monitoring and analyzing the security posture as an ongoing operational procedure.

We still have the Microsoft native cloud app security which benefits in creating the alerting mechanism for MS-Teams related activities.But with the Log Analytics and Azure Sentinel we can do a lot more than it can be done from the Cloud App Security. We can further fine tune the alerting, create workbooks and dashboards for Microsoft Teams related activities which will be useful for Teams Monitoring.

To start with this new feature ,we need to enable this new option to ingest Teams Data into Azure Sentinel Work Spaces. This article can be followed to start with connecting office 365 with the Microsoft Cloud native SIEM Azure Sentinel.

Continue reading

Create Azure Dashboards for workbooks created from log analytics for monitoring

In the previous post we had a look at how to group multiple azure log analytics queries ,group them and display them in one screen. There are few real challenges in displaying the queries directly from the workbook. Firstly they are not having the capability to auto refresh the live data until we reload the workbook. There is no option to fit the dashboard and customize them as per our requirement. Finally there is no option to set the refresh rate, setting up the local time zone and sharing them to the required persons to view them with read access.

Creating the dashboards is much easier and there are multiple ways to do them. In this post we will have a look at creating one from the workbook.

Inorder to create a workbook navigate to Azure Log Analytics Workspace – Click on WorkBooks – Select the workbook that needs to be created in dashboard.

Continue reading

Microsoft Azure – Leverage Manage Engine AD Manager and delegate MFA reset action to the Helpdesk Team

Currently there is no option as per this uservoice to delegate the MFA reset action to help desk team via an admin role. As of now only the global admin have the required privileges to perform this action from the azure portal. In this article we had a look into how to reset this option by creating an automation account and integrating with Microsoft Flow. Though this is a good option there is another way where this action can be delegated via ManageEngine AD manager plus. 

Most of the organizations have AD Manager plus and its features integrated on their on premise tenant. This can be used to execute office 365 and Azure AD operations in a hybrid environment. In this article we will have a look at the steps to integrate AD manager plus with Azure AD to  delegate this action to the help desk team.

Below are the prerequisites :

  1. AD manager plus server must be present in the hybrid domain. Not necessarily a hybrid domain it works well for cloud only accounts as well.
  2. The connectivity to the Azure IPs and URLs are required to connect azure module connect-msolservice
  3. Azure AD modules must be downloaded  on the AD manager plus server.
  4. AD delegation must be already assigned to the help desk team with AD management role.
  5. Global admin account is required to specify them as encrypted credentials with key on the AD manager plus server. This global admin account will only be used by the manage engine AD manager server in the backend and not exposed to the helpdesk team.
Continue reading
%d bloggers like this: